eSecurity Planet

SEPTEMBER 14, 2022

To this end, some impressive technology has been created to combat the technological side of the issue, to keep hackers and similar bad actors from accessing data and account privileges they shouldn’t. Phishing complaints were reported over 300,000 times in 2021 to IC3, the only Internet crime to crack 100,000+ complaints.

Social Engineering 118

Social Engineering Energy and Utilities Phishing Scams 118

Malwarebytes

FEBRUARY 9, 2022

That leaves 78 percent that only require usernames and passwords to authenticate account users. billion account hijacking attempts using brute-forced stolen passwords. Google introduced 2FA to Gmail in 2011. Milka revealed that, at the time of his talk, less than 10 percent of Google accounts used 2FA.

Authentication 69

Authentication Social Engineering Passwords Accountability 69

Security Affairs

OCTOBER 13, 2019

Iran-linked APT group Charming Kitten employed new spear-phishing methods in attacks carried out between August and September. Microsoft Threat Intelligence Center (MSTIC) observed the APT group making more than 2,700 attempts to identify consumer email accounts belonging to specific Microsoft customers and then attack 241 of those accounts.

Media 71

Media Social Engineering Phishing Advertising 71

SecureList

MARCH 1, 2021

In their campaigns to infect mobile devices, cybercriminals always resort to social engineering tools, the most common of these passing a malicious application off as another, popular and desirable one. For example, an attacker could log in to a victim’s Facebook account and post a phishing link or spread spam.

Mobile 132

Mobile Malware Adware Banking 132

Thales Cloud Protection & Licensing

MAY 9, 2022

The first attempt was to leverage knowledge questions to complement insecure passwords, only to find out soon enough that people were using information that was easy to be compromised by simple social engineering tactics. SIM swapping attacks were the key reason that back in 2011, NIST deprecated SMS-based OTP authentication.

Authentication 71

Authentication Social Engineering Mobile Digital transformation 71

Security Affairs

SEPTEMBER 11, 2022

APT42’s TTPs overlap with another Iran-linked APT group tracked as APT35 (aka ‘ Charming Kitten ‘, ‘ Phosphorus ‘, Newscaster , and Ajax Security Team) which made the headlines in 2014 when experts at iSight issued a report describing the most elaborate net-based spying campaign organized by Iranian hackers using social media.

Surveillance 95

Surveillance Social Engineering Phishing Government 95

Thales Cloud Protection & Licensing

APRIL 7, 2022

The reputation is well-deserved when you consider that we (the cybersecurity team) tell users to create a unique password for each account to increase security. In 2011, Forrester estimated that each call to the help desk for a password reset costs $70.

Passwords 71

Passwords Password Management Authentication Social Engineering 71